Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/uI-GBtMuYVULo7ZjQUchvM48NCc.roa
File: uI-GBtMuYVULo7ZjQUchvM48NCc.roa (raw, json)
Hash identifier: n3vRM0g59TtbhquYbmBsLlrZ3mY58KaNKkOw+NFrhhw=
Subject key identifier: B8:8F:86:06:D3:2E:61:55:0B:A3:B6:63:41:47:21:BC:CE:3C:34:27
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 01856E38C988BCCA5B7268F8C902D1AC475D
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/uI-GBtMuYVULo7ZjQUchvM48NCc.roa
Signing time: Sun 01 Jan 2023 16:44:53 +0000
ROA not before: Sun 01 Jan 2023 16:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 195.178.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:c9:88:bc:ca:5b:72:68:f8:c9:02:d1:ac:47:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jan 1 16:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b88f8606d32e61550ba3b663414721bcce3c3427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:67:2d:dd:f9:f8:20:56:04:c9:ed:b8:ad:73:
cd:12:23:5b:17:ef:da:a9:a4:17:27:07:38:ee:bc:
cf:fd:85:22:2d:61:17:71:26:c9:b6:12:90:5f:62:
96:15:d0:09:de:9d:9d:b5:d3:1b:b0:41:a4:c3:9d:
d9:57:30:41:ca:15:59:67:f8:2c:8a:18:42:e8:45:
19:a1:75:d9:b3:c0:d7:b7:52:1d:11:76:4a:ec:30:
3b:c7:72:d5:bd:90:12:36:1c:ed:f5:91:77:37:d4:
60:18:94:2f:c7:a4:83:76:9a:41:c4:eb:8f:f3:e3:
c9:2a:05:2b:5d:72:37:55:96:c2:18:67:74:a7:a7:
78:fb:19:42:b4:05:eb:cb:af:7b:08:11:68:11:cf:
be:c8:51:ae:ea:53:e9:34:ae:be:69:25:cb:62:22:
dc:4f:84:d4:be:45:44:26:e3:73:d3:51:ac:6c:02:
a7:f2:1a:1c:d7:75:6d:00:6b:1f:6b:36:2e:10:98:
ee:8b:e6:e2:dd:1c:fd:91:82:d6:0c:2a:fd:87:99:
3a:05:ee:25:03:8c:1b:99:27:3c:a9:f0:93:b4:bc:
43:10:f3:24:5a:8f:75:58:d0:46:6d:3b:26:f6:4c:
6a:8d:f7:8d:cd:dc:1d:e7:e7:da:48:f6:28:55:cd:
c0:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:8F:86:06:D3:2E:61:55:0B:A3:B6:63:41:47:21:BC:CE:3C:34:27
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/uI-GBtMuYVULo7ZjQUchvM48NCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.178.159.0/24
Signature Algorithm: sha256WithRSAEncryption
90:23:24:3f:d0:46:fe:bb:c6:a5:ae:01:f2:1a:b8:84:01:9d:
13:5c:5e:dd:e2:aa:d5:82:dc:3c:a0:ea:28:43:af:3f:66:ea:
21:78:6a:78:2d:41:15:9c:90:40:16:bc:de:3e:85:f3:8d:86:
19:71:d8:75:ab:ab:2f:ed:64:73:06:14:c5:b8:94:d9:5f:38:
41:bd:f6:ab:9e:f6:cf:21:a0:d0:f9:b0:0d:7e:4a:5f:e8:13:
41:e4:1a:b7:69:da:46:d2:ce:ec:56:d1:5d:e7:ed:3e:7c:73:
91:dd:42:c5:02:00:88:ca:1f:cb:d8:7f:71:a7:18:a4:0e:68:
4b:04:60:05:d3:b9:e7:ec:e3:4e:32:3e:2a:2c:f9:da:3d:b0:
2f:12:d5:a4:c4:6b:dd:e3:24:a5:b4:28:0a:4e:4b:4d:21:66:
46:d9:e9:0f:44:7d:cd:36:ed:9a:19:3c:b9:45:ac:75:3f:94:
d0:31:06:ff:df:2d:4e:4a:2b:6c:e3:9f:fc:fb:23:b0:14:2f:
20:bd:09:4a:cb:0d:32:5c:07:1c:0c:f8:7e:11:99:57:31:ab:
b1:87:76:93:fa:ab:f9:22:bb:d3:e6:c2:c5:95:be:25:f4:49:
74:7d:49:78:bd:f2:90:46:3f:dc:f6:0f:11:29:2b:85:01:68:
8d:52:89:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:43 2024 by rpki-client on console-fra.rpki-client.org